Pinned Repositories
agartha
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
anew
A tool for adding new lines to files, skipping duplicates
ansicodes
🎨ansi escape code generator to help make colorful command line tools
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
blind-css-exfiltration
burp-piper-custom-scripts
Custom scripts for the PIPER Burp extensions.
BurpIntruderDownloader
https://www.n00py.io/2020/05/extracting-files-from-burp-intruder-output/
unashamedgeek's Repositories
unashamedgeek/hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
unashamedgeek/agartha
a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to spot authentication/authorization issues, and converts Http requests to Javascript for further XSS exploitation and more.
unashamedgeek/awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
unashamedgeek/blind-css-exfiltration
unashamedgeek/burp-piper-custom-scripts
Custom scripts for the PIPER Burp extensions.
unashamedgeek/ChatGPTerminator
ChatGPT in the terminal!
unashamedgeek/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
unashamedgeek/client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
unashamedgeek/cloudfox
Automating situational awareness for cloud penetration tests.
unashamedgeek/Ghostwriter
The SpecterOps project management and reporting engine
unashamedgeek/hosts
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.
unashamedgeek/interactsh
An OOB interaction gathering server and client library
unashamedgeek/Java-Android-Magisk-Burp-Objection-Root-Emulator-Easy
Java Android Magisk Burp Objection Root Emulator Easy (JAMBOREE)
unashamedgeek/ldapnomnom
Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP)
unashamedgeek/lego
Let's Encrypt/ACME client and library written in Go
unashamedgeek/linsk
📂 Access Linux-native file systems (including LVM and LUKS) on Windows and macOS with help of a lightweight Alpine Linux VM. x86/ARM supported.
unashamedgeek/My-PoC-Exploits
PoC exploits I wrote. They're as is and I will not offer support
unashamedgeek/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
unashamedgeek/passpie
:closed_lock_with_key: Multiplatform command-line password manager
unashamedgeek/PowerRemoteDesktop
Remote Desktop entirely coded in PowerShell.
unashamedgeek/pyscripter-er
A framework built on top of Burp's Python Scripter extension.
unashamedgeek/reverse_ssh
SSH based reverse shell
unashamedgeek/SecretFinder
SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
unashamedgeek/sj
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
unashamedgeek/socketsleuth
Burp Extension to add additional functionality for pentesting websocket based applications
unashamedgeek/SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
unashamedgeek/sslsplit
Transparent SSL/TLS interception
unashamedgeek/turbo-intruder
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
unashamedgeek/unpack-burp
For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)
unashamedgeek/Vajra
Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfaces.